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£mettjlmen& tn the aaims 

j Claim 1 (currently amended): A computer-implemented method of provisioning an aggregated 

2 service in a computing network, comprising steps of: 

3 obtaining credentials of a user who requests to access an aggregated service; 

4 locating, in a network-accessible registry, a service description document specifying a 

5 provisioning interface for the aggregated service, the aggregated service comprising an 

6 aggregation of a plurality of sub-services and the provisioning interface specifying how to invoke 

7 identity functions of the aggregated service; 

8 analyzing the obtained credentials by invoking one or more of the identity functions, 

9 according to the specification thereof in the provisioning interface, to determine whether the user 

10 is authenticated fo t, aud/ui is authuiilul far; accessing the aggregated service; and 

1 1 allowing the user to access the aggregated service only if the analyzing step has a 

12 weccsafiri mull determine* ♦fttf foe i«e r ™ authenticated for accessing the aggregated servjfifi . 

1 Claim 2 (previously presented): The computer-implemented method according to Claim 1 , 

2 wherein an implementation of each of the identify functions of the aggregated service is provided 

3 by at least one of the sub-services. 

1 Claim 3 (currently amended): The computer-implemented method according to Claim 1 , 

2 wherein: 

3 at least one of the sub-services has a local provisioning interface, the local provisioning 

4 interface specified in a corresponding service description document and comprising a 
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5 specification of how to invoke one or more identity functions of the sub-service; and 

6 the identity functions in the provisioning interface of the aggregated service are selected 

7 from the local provisioning interfaces; and further comprising the step oft 

g controlling access to each of the sutvservices having the local provisioning interface, 

9 Anther comprising the steps of: 

jO determining whether the user is authenticated for, and/m authorized f or , accessing 

1 1 the sub-service by invoking at least one of the one or more identity functions of the sub-service, 

12 according to the specification thereof in the local provisioning interface; and 

1 3 allowing the user to access the sub-service only if the determining step has a 

14 amuxMfiil result determine s that the user is authenticated for accessing the syVseivto - 

1 Claim 4 (previously presented): The computer-implemented method according to Claim 3, 

2 wherein: 

3 the step of obtaining credentials of the user al so obtains sub-service credentials for at 

4 least one of the sub-services having the local provisioning interface; and 

5 the determining step uses the obtained sub-service credentials. 

1 Claim 5 (currently amended): The computer-implemented method according to Claim 1, 

2 wherein: 

3 one or more operations of at least one of the sub-services is access-protected; 

4 the obtaining step further comprises obtaining, for at least one of the access-protected 

5 operations, operation-specific credentials of the user, and further comprising the step oft 
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6 controlling access to each of at least one of the access-protected operations, further 

7 comprising the steps of: 

S analyzing the obtained operation-specific credentials by invoking one of more of 

9 the identity functions, according to the specification thereof in the provisioning interface, to 

10 determine whether the user can access rite access-protected operation; and 
j 1 allowing the user to access the access-protected operation only if the step of 

12 analyzing the obtained operation-specific credential s haa a Miuxjaful lusult determines that the 

13 user can acce ss the access-protected operation. 



Claim 6 (canceled) 

1 Claim 7 (previously presented): The computer-implemented method according to Claim 1 , 

2 wherein identity information obtained by invoking one or more of the identity functions is 

3 programmatically relayed among at least two of the sub-services of the aggregated service. 

1 Claim 8 (previously presented): The computer-implemented method according to Claim 7, 

2 wherein the programmatic relaying comprises sending a message which specifies the identity 

3 information in a header of the message and which specifies a service request in a body of the 

4 message. 

1 Claim 9 (previously presented): The ccrniputer-implernented method according to Claim 8, 

2 wherein the message is a SOAP ("Simple Object Access Protocol") message. 
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1 Claim 10 (previously presented): The computer-implemented method according to Claim 1, 

2 wherein the service description document is specified in a markup language. 

1 Claim 1 1 (previously presented): The computer-implemented method according to Claim 10, 

2 wherein the markup language is Web Services Description Language ("WSDL"). 

1 Claim 1 2 (previously presented): The computer-implemented method according to Claim 2* 

2 wherein the network-accessible registry is accessed using standardized messages, 

1 Claim 1 3 (currently amended): A system for provisioning an aggregated service in a computing 

2 network, comprising: 

3 means for defining a provisioning interface of the aggregated service; 

4 means for specifying the provisioning interface in a service description document; 

5 means for obtaining credentials of a user who requests to access an aggregated service; 

6 means for locating, in a network-accessible registry, a service description document 

7 specifying a provisioning interface for the aggregated service, the aggregated service comprising 

8 an aggregation of a plurality of sub-services and the provisioning interface specifying how to 

9 invoke identity functions of the aggregated service; 

1 0 means for analyzing the obtained credentials by invoking one or more of the identity 

1 1 functions, according to the specification thereof in the provisioning interface, to determine 

1 2 whether the user is authenticated for, and and/oris authorized for, accessing the aggregated 
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13 service; and 

14 means for allowing the user to access the aggregated service only if the means for 

15 analyzing-! aftri ^. i i t dEt^inramaimeuserfc^ 

16 for, accessing fre ap^reyated service. 

1 Claim 14 (currently amended): A computer program product for provisioning an aggregated 

2 service in a computing network, the computer program product embodied on one or more 

3 computer-readable media and comprising: 

4 computer-readable program code [[means]] for obtaining credentials of a user who 

5 requests to access an aggregated service; 

6 computer-readable program code [[means]] for locating, in a network-accessible registry, 

7 a service description document specifying a provisioning interface for the aggregated service, the 

8 aggregated service comprising an aggregation of a plurality of sub-services and the provisioning 

9 interface specifying how to invoke identity functions of the aggregated service; 

10 computer-readable program code [[means]] for analyzing the obtained credentials by 

1 1 Invoking one or more of the identity functions, according to the specification thereof in the 

12 provisioning interface, to determine whether the user is authenticated for, or andAjHs authorized 

13 for, accessing the aggregated service; and 

14 computer-readable program code [[means]] for allowing the user to access the aggregated 

1 5 service only if the computer-readable program code [[means]] for analyzing h<w a successful 

16 rr*n» determines that the user is authenticated for , or i s authori zed for, accessing the af T Prepated 

17 service. 
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1 Claim 1 5 (previously presented): The method according to Claim I, wherein an implementation 

2 of at least one of tbe sub-services is located dynamically, at run-time. 

1 Claim 16 (previously presented): The method according to Claim 7, wherein the identity 

2 information is initially obtained as a result of tbe analyzing step, 

1 Claim 17 (previously presented): The method according to Claim 7, Wherein the identity 

2 information comprises an authentication token generated by one of the invoked identity 

3 functions. 

1 Claim 1 8 (previously presented): The method according to Claim 1 , wherein: 

2 at least two of the sub-setvices each have associated therewith an identity system for 

3 access control thereto; 

4 at least two of the associated identity systems are heterogeneous; and 

5 at least one selected one of the identity functions of the aggregated service enables 

6 dynamically joining at least two of the heterogeneous identity systems. 

1 Claim 19 (previously presented): The method according to Claim 1 8, wherein the at least one 

2 selected identity function, upon invocation, identifies the identity system that stores information 

3 pertaining to users of the sub-service with which that identity system is associated. 
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1 Claim 20 (previously presented): The method according to Claim 19, wherein the dynamic 

2 joining is enabled by relaying the identification of the identity system among the dynamically- 

3 joined identity systems. 

1 Claim 21 (new): The method according to Claim 1, wherein: 

2 the analyzing step further comprises determining whether the user is authorized for 

3 accessing the aggregated service, and 

4 the allowing step further comprises allowing the user to access the aggregated service 

5 only if the analyzing step determines that the user is both authenticated for, and authorized for, 

6 accessing the aggregated service. 
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